[Zope] Re: Question about Zope and security

[Lennart Regebro]

On 3/30/06, Cyrille Bonnet <cyrille at 3months.com> wrote:
> Now, just to push the problem a bit further: ideally, I'd like to put
> SSL just on the login form. Zope would authenticate the user in that
> request and return a "session ID" that would then be passed back and
> forth in each request (without SSL).

I'd recommend the Yale CAS system. It does exactly this. I wrote a
plugin for PAS for it, and I think I have some Cookie.Crumbler type
thingy somewhere too.